CVE-2007-3456

CVE-2007-3456 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Integer overflow in Adobe Flash Player 9.0.45.0 and earlier might allow remote attackers to execute arbitrary code via a large length value for a (1) Long string or (2) XML variable type in a crafted (a) FLV or (b) SWF file, related to an "input validation error," including a signed comparison of values that are assumed to be non-negative.

Learn more about our Web Application Penetration Testing UK.